Thanks for sharing! it is really difficult and confusing at first, you made it easier to understand. Could you add to your series a Cisco ACI troubleshooting video, with topics such as, how to modify a contract, add a different host/IP/protocol to an existing EPG, initial out-of-the-box type of set up, how to deep dive into APIC logs, etc. for example. Thanks again, keep up the excellent work!!
Hey Rich, great series very hard to find digestible ACI content. In your Part 2 you mention the special case for how to handle an external firewall like say a Check Point would love to see that content. As well something i find hard to understand is how to follow the flow of a packet into and out of the ACI say, coming from the internet, being sent to an external security device or load balancer, coming back into the ACI and then hitting the web server.
Thank you for the feedback. I would like to do a video showing L4-7 services in ACI, however it's been a challenge to find a suitable lab environment to demonstrate it. I do keep looking though.
Hi Rich, given a migration scenario from a traditional network to an ACI environment using l2out , I have a question about gateway migration. Typically we would migrate the gateway last, after all the workloads, by enabling unicast routing on the bridge domain and shutting the l2out connection. However a client wants something different, he would like to keep the legacy gateway and have a second one on the same subnet in ACI, this new gateway points to a new firewall. After a workload is migrated, he would configure the new gateway in the server. He thinks that this approach would make use of the new gear faster instead of keeping the routing in the old infrastructure. Do you think this is possible? Never seen it done. (PS: l3out is not an option for him) Thanks a lot,
Here is the link to the Cisco Doc on ACI and virtualization: www.cisco.com/c/en/us/td/docs/dcn/aci/apic/6x/virtualization/cisco-aci-virtualization-guide-60x.html
Thanks for sharing! it is really difficult and confusing at first, you made it easier to understand. Could you add to your series a Cisco ACI troubleshooting video, with topics such as, how to modify a contract, add a different host/IP/protocol to an existing EPG, initial out-of-the-box type of set up, how to deep dive into APIC logs, etc. for example. Thanks again, keep up the excellent work!!
Very very informative videos... thank you Ritch
Hey Rich, great series very hard to find digestible ACI content. In your Part 2 you mention the special case for how to handle an external firewall like say a Check Point would love to see that content. As well something i find hard to understand is how to follow the flow of a packet into and out of the ACI say, coming from the internet, being sent to an external security device or load balancer, coming back into the ACI and then hitting the web server.
Thank you for the feedback. I would like to do a video showing L4-7 services in ACI, however it's been a challenge to find a suitable lab environment to demonstrate it. I do keep looking though.
Great Video thanks for sharing.
gracias..!!, saludos de Lima Péru
Hi Rich, given a migration scenario from a traditional network to an ACI environment using l2out , I have a question about gateway migration. Typically we would migrate the gateway last, after all the workloads, by enabling unicast routing on the bridge domain and shutting the l2out connection. However a client wants something different, he would like to keep the legacy gateway and have a second one on the same subnet in ACI, this new gateway points to a new firewall. After a workload is migrated, he would configure the new gateway in the server. He thinks that this approach would make use of the new gear faster instead of keeping the routing in the old infrastructure. Do you think this is possible? Never seen it done. (PS: l3out is not an option for him) Thanks a lot,
Is possible to expend on l2out with VXLAN with Fortigate as example. Might be second L4-L7 third party hardware ( firewalls, LB ). Thank you !!!
How to link vmware to aci?
Here is the link to the Cisco Doc on ACI and virtualization: www.cisco.com/c/en/us/td/docs/dcn/aci/apic/6x/virtualization/cisco-aci-virtualization-guide-60x.html